GNU bug report logs - #37575
27.0.50; Segfault on redisplay

Please note: This is a static page, with minimal formatting, updated once a day.
Click here to see this page with the latest information and nicer formatting.

Package: emacs; Reported by: Richard Copley <rcopley@HIDDEN>; Keywords: unreproducible moreinfo; dated Tue, 1 Oct 2019 19:18:02 UTC; Maintainer for emacs is bug-gnu-emacs@HIDDEN.
Added tag(s) unreproducible. Request was from Stefan Kangas <stefan@HIDDEN> to control <at> debbugs.gnu.org. Full text available.
Added tag(s) moreinfo. Request was from Eli Zaretskii <eliz@HIDDEN> to control <at> debbugs.gnu.org. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 3 Oct 2019 19:20:30 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Oct 03 15:20:30 2019
Received: from localhost ([127.0.0.1]:41181 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iG6eL-0000P6-Pa
	for submit <at> debbugs.gnu.org; Thu, 03 Oct 2019 15:20:30 -0400
Received: from mail-ot1-f46.google.com ([209.85.210.46]:33940)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <rcopley@HIDDEN>) id 1iG6eJ-0000Or-Em
 for 37575 <at> debbugs.gnu.org; Thu, 03 Oct 2019 15:20:27 -0400
Received: by mail-ot1-f46.google.com with SMTP id m19so3342293otp.1
 for <37575 <at> debbugs.gnu.org>; Thu, 03 Oct 2019 12:20:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to
 :cc; bh=6sSNwVksfqNEvviQFltLygzZbmDdNvlyFTMjyU5yuNo=;
 b=LDZtV9JH6q5ej9VO0myY4WEIsP5Dg0cM8yMqgQsAcjuVqiRSEplDcg/spF7i6jsUc1
 YpgnbQ3ZXSyH3ITL1/VruyglPpbcJXl74lPw3GKnXbhR/80G7x9/BGgaR/7ZdhbHfo8C
 jO82pjrikUbyMOVF+QM2yrdBtlAfjkvVpWKgYNasLh7abAsRFpbZW3lJ6xQJi1QKOkhr
 AXSND7uUTxV/YWXxmov1XP0G/5gUr2X7ISDQcQ06eFZbR+czmlUomqygLZNhS/xBHand
 bfqvzM/VD3PQBrHxBttyiqiwbw6p/r2JRCeN5gt1gVI1T3cBXfyPJoX4YRw6LbVCl0Cz
 1vKg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to:cc;
 bh=6sSNwVksfqNEvviQFltLygzZbmDdNvlyFTMjyU5yuNo=;
 b=qrkigC9GXLngs66X1Yr2Hz6c2nb7QuLIWZcF3PwT73g2+2u5xFXaN2tHyZpoHmWb1D
 gdQNNDMQeoz2WeG4MtrBd4b78gPx4cKFVJZDNWRt0+JMpU2js7o76YIMHwhSJDbuQcMd
 vrbXHXbSOsR/kFL4bwcY5gE1GiCdHIPkcyCa5EmeQSKJ9usCJlT8TmzGrfXEVVQSt0qF
 7SkhDTbq+uyYFTJxK7ifZh5DuN0OiiqghmeORINPwuYPL+bKtPN8Y1tpLEfbI+M2bE8d
 cI21HqvZpKPfS/Mtm8umfLahoFDcBpWqdeBU37Ui+jxnCQgjsZqTRfcbtfM3gDNdWbyZ
 GrMQ==
X-Gm-Message-State: APjAAAWElR3Qc2VmjYma1jlaF9DJZ9r4HymvrMEpCKLf7dec+sCerupB
 uu6qBDyVyryhHApje22ZrZOFCjn+2GzXxvZvztE=
X-Google-Smtp-Source: APXvYqyB2Uke2UihhByrtMzCcWhdm7tE5CtaQVHUJ3VIhTv6mwJH1Gl7dHO3SIKxSo6sdOp421qoVu3qszHY9ddH4LE=
X-Received: by 2002:a9d:4a98:: with SMTP id i24mr3198672otf.126.1570130421718; 
 Thu, 03 Oct 2019 12:20:21 -0700 (PDT)
MIME-Version: 1.0
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 <83r23v8am4.fsf@HIDDEN>
 <CAPM58ohhyJJditvN=5qtScnMkTtXp1G=7u3xBEVwQkk=jDF6EQ@HIDDEN>
 <83lfu17oeb.fsf@HIDDEN>
 <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
 <CAPM58ogkn0-WmTsUwKt7sHXetKjfj5PiSg2k2LHuuvLo58WtLQ@HIDDEN>
 <834l0p7j2g.fsf@HIDDEN>
In-Reply-To: <834l0p7j2g.fsf@HIDDEN>
From: Richard Copley <rcopley@HIDDEN>
Date: Thu, 3 Oct 2019 20:19:55 +0100
Message-ID: <CAPM58ogLeiGAiMvb-kKzBp9jU1ThYXQS0D_tUMEkuoqzd9r3qQ@HIDDEN>
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
To: Eli Zaretskii <eliz@HIDDEN>
Content-Type: multipart/alternative; boundary="00000000000009a47a0594067a08"
X-Spam-Score: 0.0 (/)
X-Debbugs-Envelope-To: 37575
Cc: 37575 <at> debbugs.gnu.org
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.0 (-)

--00000000000009a47a0594067a08
Content-Type: text/plain; charset="UTF-8"

On Thu, 3 Oct 2019 at 19:58, Eli Zaretskii <eliz@HIDDEN> wrote:

> > From: Richard Copley <rcopley@HIDDEN>
> > Date: Thu, 3 Oct 2019 19:38:04 +0100
> >
> > This is a straightforward backtrace, modulo the deficiencies that an
> experienced low-level programmer learns
> > to expect.  It says that dereferencing d raised an access violation.
>
> Then I guess I'm not experienced enough, and I should stop trying to
> guess what caused this crash.
>

If that means you're going to stop bullying me about it, it's fine with me.

You're very welcome for the bug report.

--00000000000009a47a0594067a08
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail=
_attr">On Thu, 3 Oct 2019 at 19:58, Eli Zaretskii &lt;<a href=3D"mailto:eli=
z@HIDDEN">eliz@HIDDEN</a>&gt; wrote:<br></div><blockquote class=3D"gmail_=
quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,=
204);padding-left:1ex">&gt; From: Richard Copley &lt;<a href=3D"mailto:rcop=
ley@HIDDEN" target=3D"_blank">rcopley@HIDDEN</a>&gt;<br>
&gt; Date: Thu, 3 Oct 2019 19:38:04 +0100<br>
&gt; <br>
&gt; This is a straightforward backtrace, modulo the deficiencies that an e=
xperienced low-level programmer learns<br>
&gt; to expect.=C2=A0 It says that dereferencing d raised an access violati=
on.<br>
<br>
Then I guess I&#39;m not experienced enough, and I should stop trying to<br=
>
guess what caused this crash.<br></blockquote><div><br></div>If that means =
you&#39;re going to stop bullying me about it, it&#39;s fine with me.</div>=
<div class=3D"gmail_quote"><br></div><div class=3D"gmail_quote">You&#39;re =
very welcome for the bug report.</div><div class=3D"gmail_quote"><br></div>=
<div class=3D"gmail_quote"><br></div></div>

--00000000000009a47a0594067a08--




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 3 Oct 2019 18:58:25 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Oct 03 14:58:25 2019
Received: from localhost ([127.0.0.1]:41171 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iG6Iz-0008GH-Fz
	for submit <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:58:25 -0400
Received: from eggs.gnu.org ([209.51.188.92]:37653)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <eliz@HIDDEN>) id 1iG6Iy-0008G2-Aw
 for 37575 <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:58:24 -0400
Received: from fencepost.gnu.org ([2001:470:142:3::e]:50714)
 by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <eliz@HIDDEN>)
 id 1iG6It-0003LN-4L; Thu, 03 Oct 2019 14:58:19 -0400
Received: from [176.228.60.248] (port=1116 helo=home-c4e4a596f7)
 by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256)
 (Exim 4.82) (envelope-from <eliz@HIDDEN>)
 id 1iG6Io-0000Co-S9; Thu, 03 Oct 2019 14:58:17 -0400
Date: Thu, 03 Oct 2019 21:57:59 +0300
Message-Id: <834l0p7j2g.fsf@HIDDEN>
From: Eli Zaretskii <eliz@HIDDEN>
To: Richard Copley <rcopley@HIDDEN>
In-reply-to: <CAPM58ogkn0-WmTsUwKt7sHXetKjfj5PiSg2k2LHuuvLo58WtLQ@HIDDEN>
 (message from Richard Copley on Thu, 3 Oct 2019 19:38:04 +0100)
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 <83r23v8am4.fsf@HIDDEN>
 <CAPM58ohhyJJditvN=5qtScnMkTtXp1G=7u3xBEVwQkk=jDF6EQ@HIDDEN>
 <83lfu17oeb.fsf@HIDDEN>
 <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
 <CAPM58ogkn0-WmTsUwKt7sHXetKjfj5PiSg2k2LHuuvLo58WtLQ@HIDDEN>
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Spam-Score: -2.3 (--)
X-Debbugs-Envelope-To: 37575
Cc: 37575 <at> debbugs.gnu.org
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -3.3 (---)

> From: Richard Copley <rcopley@HIDDEN>
> Date: Thu, 3 Oct 2019 19:38:04 +0100
> 
> This is a straightforward backtrace, modulo the deficiencies that an experienced low-level programmer learns
> to expect.  It says that dereferencing d raised an access violation.

Then I guess I'm not experienced enough, and I should stop trying to
guess what caused this crash.




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 3 Oct 2019 18:45:22 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Oct 03 14:45:22 2019
Received: from localhost ([127.0.0.1]:41157 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iG66M-0007vn-Dy
	for submit <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:45:22 -0400
Received: from eggs.gnu.org ([209.51.188.92]:36194)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <eliz@HIDDEN>) id 1iG66L-0007vc-01
 for 37575 <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:45:21 -0400
Received: from fencepost.gnu.org ([2001:470:142:3::e]:50577)
 by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <eliz@HIDDEN>)
 id 1iG66E-0006u7-8E; Thu, 03 Oct 2019 14:45:15 -0400
Received: from [176.228.60.248] (port=4291 helo=home-c4e4a596f7)
 by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256)
 (Exim 4.82) (envelope-from <eliz@HIDDEN>)
 id 1iG66B-00044d-P5; Thu, 03 Oct 2019 14:45:13 -0400
Date: Thu, 03 Oct 2019 21:44:58 +0300
Message-Id: <83a7ah7jo5.fsf@HIDDEN>
From: Eli Zaretskii <eliz@HIDDEN>
To: Richard Copley <rcopley@HIDDEN>
In-reply-to: <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
 (message from Richard Copley on Thu, 3 Oct 2019 19:04:49 +0100)
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 <83r23v8am4.fsf@HIDDEN>
 <CAPM58ohhyJJditvN=5qtScnMkTtXp1G=7u3xBEVwQkk=jDF6EQ@HIDDEN>
 <83lfu17oeb.fsf@HIDDEN>
 <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Spam-Score: -2.3 (--)
X-Debbugs-Envelope-To: 37575
Cc: 37575 <at> debbugs.gnu.org
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -3.3 (---)

> From: Richard Copley <rcopley@HIDDEN>
> Date: Thu, 3 Oct 2019 19:04:49 +0100
> 
> Again, the crash is before the chkstk in the backtrace, not after it.

It's both before and after, AFAICT.  Normally, when Emacs crashes due
to SIGSEGV, there's no chkstk on the callstack, not AFAIR.

As for longjmp: if another thread, whose stack was not shown, throws
to top-level (e.g., if it somehow calls Fsignal and its ilk), it will
longjmp to the wrong stack.  That's the situation I had in mind.

Anyway, I don't really understand where this discussion goes.  It is
purely academic, because all the evidence was unfortunately lost.  If
you want me to say I might be wrong with my guesses, here I am saying
that.




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 3 Oct 2019 18:38:40 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Oct 03 14:38:39 2019
Received: from localhost ([127.0.0.1]:41152 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iG5zr-0007l3-JB
	for submit <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:38:39 -0400
Received: from mail-oi1-f170.google.com ([209.85.167.170]:42950)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <rcopley@HIDDEN>) id 1iG5zq-0007kp-3G
 for 37575 <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:38:38 -0400
Received: by mail-oi1-f170.google.com with SMTP id i185so3525190oif.9
 for <37575 <at> debbugs.gnu.org>; Thu, 03 Oct 2019 11:38:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
 bh=84xAF6T87tVewN5rv/BkJxssJpdUa/7fnD2eMxHOsqk=;
 b=oc17x9gfq5oFwu4ZLxCAolyMwtTBs5CgnHmzS6qCJVNqcX5DV1+V7q9UyOamWdonNM
 gw8oLfesBM6gKxxhVY0Sr4h7aR+wgR6edI9TCZVlIK55f8JTdLoi+qGATGkSRrZBvbnb
 ovPKWlE1BUIVvoSt05wrv120bz6587ihnUsMob242V1AmcfFITvn8QFYhAMS/fg88z5g
 VwKFgA2dVtRewy4jiJId9gmnLSgCG6vuiEdH2uTLd329aN8BPmmBYB60a9x9fOAhaW47
 arjPSOpc+FBNKz2v3H7ciOwbopRfh5mlLShMPQXGOODRhxNDs0+zp5kO3KMpXsuCYBgL
 oQhg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to;
 bh=84xAF6T87tVewN5rv/BkJxssJpdUa/7fnD2eMxHOsqk=;
 b=LeIWRg09bwzk3fr6uWptIbGsLjdObHmj3f97BlHIf2mq48SdSjjrmgKpYfhPkFuOsf
 fVep9PEzSo9qPl2RtK4O6ke9fXF6bpnMd18P7gCBd6dIwmc/FEBULVcpEXX/XPK2PWLZ
 MNN8ANAarWuiW/xMvp8pSbpbWMk3IWkVqDG8lrMZZlinL+ubOWMM5Mny230HpZ2MtVP/
 923Q1XcQPqGUJ/aS4ESEppvZIH0iD2WFKj3kAoKJtlRGdjTwD6KUBxC4afBAeiXuhRnr
 CQn1FxBGukXS+S4texCjUb5LYbD77sO/J84rgV9R/FBth82w6/shsoTcxP2k8nnvXrF1
 ErDg==
X-Gm-Message-State: APjAAAUXB55yFhyl9szsCG93iq+kGFoZXf90mxNmuItzyz2yN844Dv12
 mTmUUoqJKpz10Q1ZP/vq5VVu7ImOE9Ddgma9h+o=
X-Google-Smtp-Source: APXvYqxr7kf99rjjgGiFOGAID5L+P2pg7a6TKlhW8c7qfnPpYi+cqujjet7ZtnK6kQga5dLgkv8qnK7GLg4QswEl9ZY=
X-Received: by 2002:aca:c5cb:: with SMTP id v194mr3795414oif.106.1570127912237; 
 Thu, 03 Oct 2019 11:38:32 -0700 (PDT)
MIME-Version: 1.0
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 <83r23v8am4.fsf@HIDDEN>
 <CAPM58ohhyJJditvN=5qtScnMkTtXp1G=7u3xBEVwQkk=jDF6EQ@HIDDEN>
 <83lfu17oeb.fsf@HIDDEN>
 <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
In-Reply-To: <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
From: Richard Copley <rcopley@HIDDEN>
Date: Thu, 3 Oct 2019 19:38:04 +0100
Message-ID: <CAPM58ogkn0-WmTsUwKt7sHXetKjfj5PiSg2k2LHuuvLo58WtLQ@HIDDEN>
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
To: Eli Zaretskii <eliz@HIDDEN>, 37575 <at> debbugs.gnu.org
Content-Type: multipart/alternative; boundary="00000000000075fe82059405e459"
X-Spam-Score: 0.0 (/)
X-Debbugs-Envelope-To: 37575
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.0 (-)

--00000000000075fe82059405e459
Content-Type: text/plain; charset="UTF-8"

On Thu, 3 Oct 2019 at 19:04, Richard Copley <rcopley@HIDDEN> wrote:

> On Thu, 3 Oct 2019 at 18:03, Eli Zaretskii <eliz@HIDDEN> wrote:
>
> chkstk is the function that probes the stack for whether it crossed
>> the guard page at the end of the stack (a.k.a "stack overflow").  It
>> is invoked internally by alloca (except that there's no alloca
>> anywhere in sight near the code that allegedly blew up), and when
>> allocating stack-based data.
>
>
> The chktsk call is in ntdll!RtlRaiseException.
>

From "objdump -Mintel -d -C -l c:\windows\system32\ntdll.dll":

   0x0000000180051f77 <ntdll!RtlRaiseException+615>: callq  0x1800a34c0
<ntdll!__chkstk>
[...]
   0x00000001800520a4 <ntdll!RtlRaiseException+916>: callq  0x1800a35d0
<ntdll!__chkstk+272>

  However, note that it is chkstk that
>> ended up in the exception handler, which is at least weird.  IME, this
>> more often than not happens when the code longjmp's on the wrong
>> stack, which is why I asked about other threads.
>>
>
> We're nowhere near any longjmp.
>
> > And given that chkstk is a leaf function, how do you deduce anything
>> from its presence, except that there is
>> > some flaw in GDB's backtrace generation or in its debug information for
>> ntdll.dll?
>>
>> I deduce that because there should be no reason for chkstk itself to
>> crash.
>>
>
It's the debug information that is incorrect. In the ntdll.dll on my
system, chkstk itself is 77 bytes long. (As you would expect, this
function's control flow is extremely simple to follow.) But 3392 bytes,
containing several blocks of code which are not reached from chkstk, are
attributed to chkstk in the debug information. None of those code blocks
crashed. One of them invoked the exception handler.

This is a straightforward backtrace, modulo the deficiencies that an
experienced low-level programmer learns to expect.  It says that
dereferencing d raised an access violation.

--00000000000075fe82059405e459
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail=
_attr">On Thu, 3 Oct 2019 at 19:04, Richard Copley &lt;<a href=3D"mailto:rc=
opley@HIDDEN">rcopley@HIDDEN</a>&gt; wrote:<br></div><blockquote clas=
s=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid r=
gb(204,204,204);padding-left:1ex"><div dir=3D"ltr"><div class=3D"gmail_quot=
e"><div dir=3D"ltr" class=3D"gmail_attr">On Thu, 3 Oct 2019 at 18:03, Eli Z=
aretskii &lt;<a href=3D"mailto:eliz@HIDDEN" target=3D"_blank">eliz@HIDDEN=
</a>&gt; wrote:<br></div><br><blockquote class=3D"gmail_quote" style=3D"mar=
gin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1=
ex">
chkstk is the function that probes the stack for whether it crossed<br>
the guard page at the end of the stack (a.k.a &quot;stack overflow&quot;).=
=C2=A0 It<br>
is invoked internally by alloca (except that there&#39;s no alloca<br>
anywhere in sight near the code that allegedly blew up), and when<br>
allocating stack-based data.</blockquote><div><br></div><div>The chktsk cal=
l is in=20
ntdll!RtlRaiseException.</div></div></div></blockquote><div><br></div><div>=
From &quot;objdump -Mintel -d -C -l c:\windows\system32\ntdll.dll&quot;:<br=
></div><div><br></div>=C2=A0=C2=A0 0x0000000180051f77 &lt;ntdll!RtlRaiseExc=
eption+615&gt;:	callq =C2=A00x1800a34c0 &lt;ntdll!__chkstk&gt; <br></div><d=
iv class=3D"gmail_quote">[...]</div><div class=3D"gmail_quote">=C2=A0=C2=A0=
 0x00000001800520a4 &lt;ntdll!RtlRaiseException+916&gt;:	callq =C2=A00x1800=
a35d0 &lt;ntdll!__chkstk+272&gt;<br></div><div class=3D"gmail_quote"></div>=
<div class=3D"gmail_quote"><br><blockquote class=3D"gmail_quote" style=3D"m=
argin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left=
:1ex"><div dir=3D"ltr"><div class=3D"gmail_quote"><blockquote class=3D"gmai=
l_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,20=
4,204);padding-left:1ex">=C2=A0 However, note that it is chkstk that<br>
ended up in the exception handler, which is at least weird.=C2=A0 IME, this=
<br>
more often than not happens when the code longjmp&#39;s on the wrong<br>
stack, which is why I asked about other threads.<br></blockquote></div><div=
 class=3D"gmail_quote"></div><div class=3D"gmail_quote"><br></div><div clas=
s=3D"gmail_quote">We&#39;re nowhere near any longjmp.<br><div></div></div><=
br><div class=3D"gmail_quote"><blockquote class=3D"gmail_quote" style=3D"ma=
rgin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:=
1ex">
&gt; And given that chkstk is a leaf function, how do you deduce anything f=
rom its presence, except that there is<br>
&gt; some flaw in GDB&#39;s backtrace generation or in its debug informatio=
n for ntdll.dll?<br>
<br>
I deduce that because there should be no reason for chkstk itself to<br>
crash.<br></blockquote></div></div></blockquote><div><br></div><div>
<div>It&#39;s the debug information that is incorrect. In the ntdll.dll on =
my system, chkstk itself is 77 bytes long. (As you would expect, this funct=
ion&#39;s control flow is extremely simple to follow.) But 3392 bytes, cont=
aining several blocks of code which are not reached from chkstk, are attrib=
uted to chkstk in the debug information. None of those code blocks crashed.=
 One of them invoked the exception handler.</div></div><div><br></div><div>=
This is a straightforward   backtrace, modulo the deficiencies that an expe=
rienced low-level programmer learns to expect.=C2=A0 It says that dereferen=
cing d raised an access violation.<br></div><div><br></div></div></div>

--00000000000075fe82059405e459--




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 3 Oct 2019 18:05:26 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Oct 03 14:05:26 2019
Received: from localhost ([127.0.0.1]:41106 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iG5Th-0006th-LT
	for submit <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:05:25 -0400
Received: from mail-ot1-f43.google.com ([209.85.210.43]:34044)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <rcopley@HIDDEN>) id 1iG5Tg-0006tT-Dh
 for 37575 <at> debbugs.gnu.org; Thu, 03 Oct 2019 14:05:24 -0400
Received: by mail-ot1-f43.google.com with SMTP id m19so3144473otp.1
 for <37575 <at> debbugs.gnu.org>; Thu, 03 Oct 2019 11:05:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
 bh=qb9bxoU6OahSQDLodQGZjYc6VkWYPYBu04Ub/ZOdqNw=;
 b=ARJPCYnNvrT8jDyh/rVbMX9qzbfD51GvwaKoHoTcQR3Hkj3vQziIfofTN6y/RKxqrP
 fmrrXXS0oKNaEPYYh7+2sM6BK96iURnzSXCX1zs2OH9VkHEBUc7ilvKIh0mkXzSZpa8u
 Hl498zSfy4pv9SscH8sA17DN5S9pfO4xLeBQhmKf1ripL9UAuVSKV5O8D4rlWCQCC+su
 VvQGNDp/MDibIX+edQKUdqV8J2SAve0dcsK0L1IFUvDEqwrkdzWWhE8DXafexL1IVarV
 4wrPYjPHdI4cCRj8RnO6YM65sNz/VvJbrgn7RF2yd2Hf0GQ2hnfcKYkneG683KyxPBDS
 6Kbw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:references:in-reply-to:from:date
 :message-id:subject:to;
 bh=qb9bxoU6OahSQDLodQGZjYc6VkWYPYBu04Ub/ZOdqNw=;
 b=uMnxTjGYKK9x4Brf048hW+9eIgUDGmQqz89/cU4vKH/rfn5zuHjlRrRrApDx7ZSEHV
 0vYxdXv46pzgQZOwPWyO7MrHWTxmbLkPTRWRsarmQ+jDknlLaFEUX9vYUrLHHwD5lv+B
 mRFb3oK3LUMrXdunqfXnHBLETylP5igCm9yIk5EZgchaoT+9jzYybBWua+h64ae8zejN
 zpAM5y5qEvq+hsUnioMXTsvpDoUBcUJzrN0Ei/b25SJLt1DxrwLdDoJ32FoILAY8ie79
 1T3ri61r+wqGvqmHEFAn5xotl8DjIOxINqV9NgDsopZh7sLitLzfNO0MYqHEsx6KuGla
 PgNQ==
X-Gm-Message-State: APjAAAXpilHS6nOxN5ZfUvIBIiTUR0Nx9AYiGV4JsqpPUACb0Dvh/86s
 /hSktXpx54byaz/i8eKVQ/grP2mkxVs8rMkmHyQ=
X-Google-Smtp-Source: APXvYqygxVDa7UjJe3ItM1fF5mFEgRUydakkqdU15u+OToMZZ01vRSn7Kvbd0rfKJtleJ/yB8ZZl7NxpRRaFhTX+Uvs=
X-Received: by 2002:a9d:3445:: with SMTP id v63mr7676625otb.192.1570125918755; 
 Thu, 03 Oct 2019 11:05:18 -0700 (PDT)
MIME-Version: 1.0
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 <83r23v8am4.fsf@HIDDEN>
 <CAPM58ohhyJJditvN=5qtScnMkTtXp1G=7u3xBEVwQkk=jDF6EQ@HIDDEN>
 <83lfu17oeb.fsf@HIDDEN>
In-Reply-To: <83lfu17oeb.fsf@HIDDEN>
From: Richard Copley <rcopley@HIDDEN>
Date: Thu, 3 Oct 2019 19:04:49 +0100
Message-ID: <CAPM58ojHtfiA1A9Xamis0pNGuDTxCDumxvBX-9StB6jDYm7r2g@HIDDEN>
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
To: Eli Zaretskii <eliz@HIDDEN>, 37575 <at> debbugs.gnu.org
Content-Type: multipart/alternative; boundary="000000000000a3e1230594056d91"
X-Spam-Score: 0.0 (/)
X-Debbugs-Envelope-To: 37575
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -1.0 (-)

--000000000000a3e1230594056d91
Content-Type: text/plain; charset="UTF-8"

On Thu, 3 Oct 2019 at 18:03, Eli Zaretskii <eliz@HIDDEN> wrote:

> [Private email?]
>
> From: Richard Copley <rcopley@HIDDEN>
> > Date: Wed, 2 Oct 2019 20:28:40 +0100
> >
> >  Hmm... I don't see how re_match_2_internal on line 4940 could possibly
> >  cause a fatal signal,
> >
> > Taking the backtrace at face value, clearly d pointed to invalid memory.
>
> Theoretically, yes.  I very much doubt that, but it would be good to
> examine the value of d (which I guess we cannot now?).
>

That's right.


> >  and that .chkstk in the backtrace is a hint of
> >  some stack-related problem.
> >
> > I don't follow. The entry is after the signal was raised, not before.
> Calling chkstk doesn't indicate a problem.
>
> chkstk is the function that probes the stack for whether it crossed
> the guard page at the end of the stack (a.k.a "stack overflow").  It
> is invoked internally by alloca (except that there's no alloca
> anywhere in sight near the code that allegedly blew up), and when
> allocating stack-based data.


The chktsk call is in ntdll!RtlRaiseException.


>   However, note that it is chkstk that
> ended up in the exception handler, which is at least weird.  IME, this
> more often than not happens when the code longjmp's on the wrong
> stack, which is why I asked about other threads.
>

We're nowhere near any longjmp.

> And given that chkstk is a leaf function, how do you deduce anything from
> its presence, except that there is
> > some flaw in GDB's backtrace generation or in its debug information for
> ntdll.dll?
>
> I deduce that because there should be no reason for chkstk itself to
> crash.
>

Again, the crash is before the chkstk in the backtrace, not after it.


> >    If you still have this crashed
> >  sesion inside GDB, please show the result of
> >
> >    (gdb) thread apply all bt
> >
> > I don't have it now.
>
> That's too bad.  And I guess this is not reproducible, either?
>

Doesn't seem to be.


> > If it happens again I'll try and get that. (Something in
> font-lock-keywords-alist, I suppose.)
>
> OK.
>

OK.

--000000000000a3e1230594056d91
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail=
_attr">On Thu, 3 Oct 2019 at 18:03, Eli Zaretskii &lt;<a href=3D"mailto:eli=
z@HIDDEN" target=3D"_blank">eliz@HIDDEN</a>&gt; wrote:<br></div><blockquo=
te class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px =
solid rgb(204,204,204);padding-left:1ex">[Private email?]<br></blockquote><=
blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-l=
eft:1px solid rgb(204,204,204);padding-left:1ex">
&gt; From: Richard Copley &lt;<a href=3D"mailto:rcopley@HIDDEN" target=
=3D"_blank">rcopley@HIDDEN</a>&gt;<br>
&gt; Date: Wed, 2 Oct 2019 20:28:40 +0100<br>
&gt; <br>
&gt;=C2=A0 Hmm... I don&#39;t see how re_match_2_internal on line 4940 coul=
d possibly<br>
&gt;=C2=A0 cause a fatal signal,<br>
&gt; <br>
&gt; Taking the backtrace at face value, clearly d pointed to invalid memor=
y.<br>
<br>
Theoretically, yes.=C2=A0 I very much doubt that, but it would be good to<b=
r>
examine the value of d (which I guess we cannot now?).<br></blockquote><div=
><br></div><div>That&#39;s right.<br></div><div>=C2=A0</div><blockquote cla=
ss=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid =
rgb(204,204,204);padding-left:1ex">
&gt;=C2=A0 and that .chkstk in the backtrace is a hint of<br>
&gt;=C2=A0 some stack-related problem.<br>
&gt; <br>
&gt; I don&#39;t follow. The entry is after the signal was raised, not befo=
re. Calling chkstk doesn&#39;t indicate a problem.<br>
<br>
chkstk is the function that probes the stack for whether it crossed<br>
the guard page at the end of the stack (a.k.a &quot;stack overflow&quot;).=
=C2=A0 It<br>
is invoked internally by alloca (except that there&#39;s no alloca<br>
anywhere in sight near the code that allegedly blew up), and when<br>
allocating stack-based data.</blockquote><div><br></div><div>The chktsk cal=
l is in=20
ntdll!RtlRaiseException.<br></div><div>=C2=A0</div><blockquote class=3D"gma=
il_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,2=
04,204);padding-left:1ex">=C2=A0 However, note that it is chkstk that<br>
ended up in the exception handler, which is at least weird.=C2=A0 IME, this=
<br>
more often than not happens when the code longjmp&#39;s on the wrong<br>
stack, which is why I asked about other threads.<br></blockquote></div><div=
 class=3D"gmail_quote"></div><div class=3D"gmail_quote"><br></div><div clas=
s=3D"gmail_quote">We&#39;re nowhere near any longjmp.<br><div></div></div><=
br><div class=3D"gmail_quote"><blockquote class=3D"gmail_quote" style=3D"ma=
rgin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:=
1ex">
&gt; And given that chkstk is a leaf function, how do you deduce anything f=
rom its presence, except that there is<br>
&gt; some flaw in GDB&#39;s backtrace generation or in its debug informatio=
n for ntdll.dll?<br>
<br>
I deduce that because there should be no reason for chkstk itself to<br>
crash.<br></blockquote><div><br></div><div>Again, the crash is before the c=
hkstk in the backtrace, not after it.</div><div></div><div>=C2=A0</div><blo=
ckquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left=
:1px solid rgb(204,204,204);padding-left:1ex">
&gt;=C2=A0 =C2=A0 If you still have this crashed<br>
&gt;=C2=A0 sesion inside GDB, please show the result of<br>
&gt; <br>
&gt;=C2=A0 =C2=A0 (gdb) thread apply all bt<br>
&gt; <br>
&gt; I don&#39;t have it now.<br>
<br>
That&#39;s too bad.=C2=A0 And I guess this is not reproducible, either?<br>=
</blockquote><div><br></div><div>Doesn&#39;t seem to be.<br></div><div>=C2=
=A0<br></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px =
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
&gt; If it happens again I&#39;ll try and get that. (Something in font-lock=
-keywords-alist, I suppose.) <br>
<br>
OK.<br></blockquote><div><br></div><div>OK.</div><div><br></div></div></div=
>

--000000000000a3e1230594056d91--




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at 37575 <at> debbugs.gnu.org:


Received: (at 37575) by debbugs.gnu.org; 2 Oct 2019 14:51:08 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Wed Oct 02 10:51:08 2019
Received: from localhost ([127.0.0.1]:38120 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iFfy8-00086O-6o
	for submit <at> debbugs.gnu.org; Wed, 02 Oct 2019 10:51:08 -0400
Received: from eggs.gnu.org ([209.51.188.92]:33410)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <eliz@HIDDEN>) id 1iFfy6-00085w-Kd
 for 37575 <at> debbugs.gnu.org; Wed, 02 Oct 2019 10:51:06 -0400
Received: from fencepost.gnu.org ([2001:470:142:3::e]:55226)
 by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <eliz@HIDDEN>)
 id 1iFfy1-0007dO-Ew; Wed, 02 Oct 2019 10:51:01 -0400
Received: from [176.228.60.248] (port=4640 helo=home-c4e4a596f7)
 by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256)
 (Exim 4.82) (envelope-from <eliz@HIDDEN>)
 id 1iFfy0-0005Or-9O; Wed, 02 Oct 2019 10:51:00 -0400
Date: Wed, 02 Oct 2019 17:50:43 +0300
Message-Id: <83r23v8am4.fsf@HIDDEN>
From: Eli Zaretskii <eliz@HIDDEN>
To: Richard Copley <rcopley@HIDDEN>
In-reply-to: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
 (message from Richard Copley on Tue, 1 Oct 2019 20:17:16 +0100)
Subject: Re: bug#37575: 27.0.50; Segfault on redisplay
References: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Spam-Score: -2.3 (--)
X-Debbugs-Envelope-To: 37575
Cc: 37575 <at> debbugs.gnu.org
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -3.3 (---)

> From: Richard Copley <rcopley@HIDDEN>
> Date: Tue, 1 Oct 2019 20:17:16 +0100
> 
> I typed C-w. Emacs crashed.
> This was in "emacs -Q" (master), in a message-mode buffer.
> 
> Backtraces:
> 
> (gdb) bt
> #0  0x00007ff9ab4cc803 in KERNELBASE!DebugBreak () from C:\WINDOWS\System32\KernelBase.dll
> #1  0x00000004003862d9 in emacs_abort () at w32fns.c:10802
> #2  0x000000040014afee in terminate_due_to_signal (sig=11, backtrace_limit=40) at emacs.c:401
> #3  0x0000000400182aed in handle_fatal_signal (sig=11) at sysdep.c:1790
> #4  0x0000000400182ac0 in deliver_thread_signal (sig=11, handler=0x400182ad5 <handle_fatal_signal>) at
> sysdep.c:1764
> #5  0x0000000400182b29 in deliver_fatal_thread_signal (sig=11) at sysdep.c:1802
> #6  0x000000040043e766 in _gnu_exception_handler (exception_data=0xbf2d40)
>     at E:/mingwbuild/mingw-w64-crt-git/src/mingw-w64/mingw-w64-crt/crt/crt_handler.c:223
> #7  0x00007ff9abb58048 in msvcrt!__C_specific_handler () from C:\WINDOWS\System32\msvcrt.dll
> #8  0x00007ff9adb735df in ntdll!.chkstk () from C:\WINDOWS\SYSTEM32\ntdll.dll
> #9  0x00007ff9adb220a9 in ntdll!RtlRaiseException () from C:\WINDOWS\SYSTEM32\ntdll.dll
> #10 0x00007ff9adb7224e in ntdll!KiUserExceptionDispatcher () from C:\WINDOWS\SYSTEM32\ntdll.dll
> #11 0x0000000400217205 in re_match_2_internal (bufp=0x4008fdef0 <searchbufs+752>, string1=0x1600000
> "MZ\220",
>     size1=179, string2=0x1601569 "", size2=3470, pos=1589, regs=0x400790778 <main_thread+152>,
> stop=1931)
>     at regex-emacs.c:4940

Hmm... I don't see how re_match_2_internal on line 4940 could possibly
cause a fatal signal, and that .chkstk in the backtrace is a hint of
some stack-related problem.  Could it be that the thread that actually
crashed was not the Lisp thread?  If you still have this crashed
sesion inside GDB, please show the result of

  (gdb) thread apply all bt

> #12 0x000000040021108a in rpl_re_search_2 (bufp=0x4008fdef0 <searchbufs+752>, str1=0x1600000
> "MZ\220", size1=179,
>     str2=0x1601569 "", size2=3470, startpos=1589, range=342, regs=0x400790778 <main_thread+152>,
> stop=1931)
>     at regex-emacs.c:3373
> #13 0x00000004001fb4b4 in search_buffer_re (string=XIL(0xe420e4), pos=1426, pos_byte=1426, lim=1932,
> lim_byte=1932,
>     n=1, trt=XIL(0), inverse_trt=XIL(0), posix=false) at search.c:1244
> #14 0x00000004001fc373 in search_buffer (string=XIL(0xe420e4), pos=1426, pos_byte=1426, lim=1932,
> lim_byte=1932, n=1,
>     RE=1, trt=XIL(0), inverse_trt=XIL(0), posix=false) at search.c:1506
> #15 0x00000004001facb7 in search_command (string=XIL(0xe420e4), bound=make_fixnum(1932),
> noerror=XIL(0x30),
>     count=XIL(0), direction=1, RE=1, posix=false) at search.c:1048

It would be also good to know what was that STRING argument to
search_command.  It should be a regular expression.

Do you have any unusual customizations related to message-mode?




Information forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.

Message received at submit <at> debbugs.gnu.org:


Received: (at submit) by debbugs.gnu.org; 1 Oct 2019 19:17:54 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Tue Oct 01 15:17:54 2019
Received: from localhost ([127.0.0.1]:34796 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
	id 1iFNei-0005ZS-Ur
	for submit <at> debbugs.gnu.org; Tue, 01 Oct 2019 15:17:54 -0400
Received: from lists.gnu.org ([209.51.188.17]:53169)
 by debbugs.gnu.org with esmtp (Exim 4.84_2)
 (envelope-from <rcopley@HIDDEN>) id 1iFNeh-0005ZL-6F
 for submit <at> debbugs.gnu.org; Tue, 01 Oct 2019 15:17:52 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:47187)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <rcopley@HIDDEN>) id 1iFNed-0006AL-99
 for bug-gnu-emacs@HIDDEN; Tue, 01 Oct 2019 15:17:50 -0400
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org
X-Spam-Level: 
X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,FREEMAIL_FROM,
 HTML_MESSAGE autolearn=disabled version=3.3.2
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <rcopley@HIDDEN>) id 1iFNea-0004Uv-Eq
 for bug-gnu-emacs@HIDDEN; Tue, 01 Oct 2019 15:17:47 -0400
Received: from mail-oi1-x22b.google.com ([2607:f8b0:4864:20::22b]:41455)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <rcopley@HIDDEN>) id 1iFNea-0004UM-79
 for bug-gnu-emacs@HIDDEN; Tue, 01 Oct 2019 15:17:44 -0400
Received: by mail-oi1-x22b.google.com with SMTP id w65so2664179oiw.8
 for <bug-gnu-emacs@HIDDEN>; Tue, 01 Oct 2019 12:17:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
 h=mime-version:from:date:message-id:subject:to;
 bh=ZstI6uhcqyC8cnATtm2vJvluv3ksxYDlUPPfXHy7gcY=;
 b=IaSXNqrY1u1vS3weq29uCaAPBvPL99b/wGMa9Old+CHurDi9pktzGz+YOnn+H7rmih
 MvAyzcxjA+821ZcjFECxR65oeSlWr+JLMv4HCW9Ga6cyjwGrPtOrHSrCf7fQJN8tZqT7
 xQx5kULtkZoGFLwZGrakKwmcfBabeEJ38PvT4L4MwQPuKcfEZ63EEQpE/1YjseUOgDpB
 8vn6Nt3TKQDq8Noy5q/h1B5L/vFan/8shppxtHg7Fq9D3lramCjv03ZdLsVbLKiP8AYP
 zAUu/tKjbU4er9y37v4nqdqxr/W4hcGm0i6xcvxTCVRkFpBxCECoeuAIIuQaKubr/2sc
 sOIA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
 bh=ZstI6uhcqyC8cnATtm2vJvluv3ksxYDlUPPfXHy7gcY=;
 b=E5rG+59mjvdDrcpJ8cJriM/x7EtYVM6YU8BGxF55MdhcuyMQ2MPC+bigXytb3CXBUE
 lfCkmX84TSirnrugfCPYV8pxwhcXCbNb9WnfHnT9OLa0lUx5vAP9DWlQU3sWZ5DDTRBB
 J4TYvAp4VnAdJpIIQwDFEufPgcxjcXOK+lKZVqiTOQE7QOt2snp3/H6o5aGl7zCKKoa7
 zoGreA7u9eOHNvkHfLb5m1AvOty8mHD52WzVG/F+Os4EfDegSXdYBllN1PiBW59/XFhy
 Qk7a3Xo3Cl9/akCUGyBWZdQ/9rYE8wAf3j4R4O+rfJLfdfATu7SSJbM6D0VHr8KjHl89
 QhzA==
X-Gm-Message-State: APjAAAXxiz2ExlslyvsKQb0aP4WDgyA10t7qWVtudGCUVeyNg+FQJgEb
 QJVMaHdqMDzjpECzemz8DMngSflQoMHyJ3A+eHlCuk+zWqY=
X-Google-Smtp-Source: APXvYqyd0rByqfAVShRKXa+GqNOR1Sn8dpVUCaisx+uLpFHbwcezjR4uIx6898x/TI+HY3i11wCslQUlftCSEBoDiRo=
X-Received: by 2002:aca:dbd7:: with SMTP id s206mr5207450oig.79.1569957462331; 
 Tue, 01 Oct 2019 12:17:42 -0700 (PDT)
MIME-Version: 1.0
From: Richard Copley <rcopley@HIDDEN>
Date: Tue, 1 Oct 2019 20:17:16 +0100
Message-ID: <CAPM58og6A5d=_-PbfCDNt=-=KtX9ui9c_k9ij1HuSALC-vW00A@HIDDEN>
Subject: 27.0.50; Segfault on redisplay
To: bug-gnu-emacs@HIDDEN
Content-Type: multipart/alternative; boundary="000000000000dad5b00593de34c7"
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
 recognized.
X-Received-From: 2607:f8b0:4864:20::22b
X-Spam-Score: 0.7 (/)
X-Debbugs-Envelope-To: submit
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, 
 <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -2.3 (--)

--000000000000dad5b00593de34c7
Content-Type: text/plain; charset="UTF-8"

I typed C-w. Emacs crashed.
This was in "emacs -Q" (master), in a message-mode buffer.

Backtraces:

(gdb) bt
#0  0x00007ff9ab4cc803 in KERNELBASE!DebugBreak () from
C:\WINDOWS\System32\KernelBase.dll
#1  0x00000004003862d9 in emacs_abort () at w32fns.c:10802
#2  0x000000040014afee in terminate_due_to_signal (sig=11,
backtrace_limit=40) at emacs.c:401
#3  0x0000000400182aed in handle_fatal_signal (sig=11) at sysdep.c:1790
#4  0x0000000400182ac0 in deliver_thread_signal (sig=11,
handler=0x400182ad5 <handle_fatal_signal>) at sysdep.c:1764
#5  0x0000000400182b29 in deliver_fatal_thread_signal (sig=11) at
sysdep.c:1802
#6  0x000000040043e766 in _gnu_exception_handler (exception_data=0xbf2d40)
    at
E:/mingwbuild/mingw-w64-crt-git/src/mingw-w64/mingw-w64-crt/crt/crt_handler.c:223
#7  0x00007ff9abb58048 in msvcrt!__C_specific_handler () from
C:\WINDOWS\System32\msvcrt.dll
#8  0x00007ff9adb735df in ntdll!.chkstk () from
C:\WINDOWS\SYSTEM32\ntdll.dll
#9  0x00007ff9adb220a9 in ntdll!RtlRaiseException () from
C:\WINDOWS\SYSTEM32\ntdll.dll
#10 0x00007ff9adb7224e in ntdll!KiUserExceptionDispatcher () from
C:\WINDOWS\SYSTEM32\ntdll.dll
#11 0x0000000400217205 in re_match_2_internal (bufp=0x4008fdef0
<searchbufs+752>, string1=0x1600000 "MZ\220",
    size1=179, string2=0x1601569 "", size2=3470, pos=1589, regs=0x400790778
<main_thread+152>, stop=1931)
    at regex-emacs.c:4940
#12 0x000000040021108a in rpl_re_search_2 (bufp=0x4008fdef0
<searchbufs+752>, str1=0x1600000 "MZ\220", size1=179,
    str2=0x1601569 "", size2=3470, startpos=1589, range=342,
regs=0x400790778 <main_thread+152>, stop=1931)
    at regex-emacs.c:3373
#13 0x00000004001fb4b4 in search_buffer_re (string=XIL(0xe420e4), pos=1426,
pos_byte=1426, lim=1932, lim_byte=1932,
    n=1, trt=XIL(0), inverse_trt=XIL(0), posix=false) at search.c:1244
#14 0x00000004001fc373 in search_buffer (string=XIL(0xe420e4), pos=1426,
pos_byte=1426, lim=1932, lim_byte=1932, n=1,
    RE=1, trt=XIL(0), inverse_trt=XIL(0), posix=false) at search.c:1506
#15 0x00000004001facb7 in search_command (string=XIL(0xe420e4),
bound=make_fixnum(1932), noerror=XIL(0x30),
    count=XIL(0), direction=1, RE=1, posix=false) at search.c:1048
#16 0x00000004001fe4ac in Fre_search_forward (regexp=XIL(0xe420e4),
bound=make_fixnum(1932), noerror=XIL(0x30),
    count=XIL(0)) at search.c:2277
#17 0x0000000400275106 in funcall_subr (subr=0x40079c480
<Sre_search_forward>, numargs=3, args=0xbf5500)
    at eval.c:2875
#18 0x0000000400274ca2 in Ffuncall (nargs=4, args=0xbf54f8) at eval.c:2794
#19 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x8f35554),
vector=XIL(0x8ec9335), maxdepth=make_fixnum(9),
args_template=make_fixnum(257), nargs=1, args=0xbf5a70) at bytecode.c:633
#20 0x00000004002756b5 in funcall_lambda (fun=XIL(0x8ec7fc5), nargs=1,
arg_vector=0xbf5a68) at eval.c:2989
#21 0x0000000400274ce6 in Ffuncall (nargs=2, args=0xbf5a60) at eval.c:2796
#22 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x4164334),
vector=XIL(0x415dc25), maxdepth=make_fixnum(25),
args_template=make_fixnum(770), nargs=3, args=0xbf6118) at bytecode.c:633
#23 0x00000004002756b5 in funcall_lambda (fun=XIL(0x415dbf5), nargs=3,
arg_vector=0xbf6100) at eval.c:2989
#24 0x0000000400274ce6 in Ffuncall (nargs=4, args=0xbf60f8) at eval.c:2796
#25 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x428e534),
vector=XIL(0x415d1d5), maxdepth=make_fixnum(14),
args_template=make_fixnum(771), nargs=3, args=0xbf66a0) at bytecode.c:633
#26 0x00000004002756b5 in funcall_lambda (fun=XIL(0x415d1a5), nargs=3,
arg_vector=0xbf6688) at eval.c:2989
#27 0x0000000400274ce6 in Ffuncall (nargs=4, args=0xbf6680) at eval.c:2796
#28 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x428e734),
vector=XIL(0x415d10d), maxdepth=make_fixnum(7),
args_template=make_fixnum(770), nargs=2, args=0xbf6b68) at bytecode.c:633
#29 0x00000004002756b5 in funcall_lambda (fun=XIL(0x415d0dd), nargs=2,
arg_vector=0xbf6b58) at eval.c:2989
#30 0x0000000400274ce6 in Ffuncall (nargs=3, args=0xbf6b50) at eval.c:2796
#31 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x42891b4),
vector=XIL(0x902b8d5), maxdepth=make_fixnum(10),
args_template=make_fixnum(257), nargs=1, args=0xbf72b0) at bytecode.c:633
#32 0x00000004002756b5 in funcall_lambda (fun=XIL(0x902b925), nargs=1,
arg_vector=0xbf72a8) at eval.c:2989
#33 0x0000000400274ce6 in Ffuncall (nargs=2, args=0xbf72a0) at eval.c:2796
#34 0x000000040027421f in run_hook_wrapped_funcall (nargs=2, args=0xbf72a0)
at eval.c:2531
#35 0x00000004002744a1 in run_hook_with_args (nargs=2, args=0xbf72a0,
funcall=0x4002741d6 <run_hook_wrapped_funcall>) at eval.c:2612
#36 0x0000000400274271 in Frun_hook_wrapped (nargs=2, args=0xbf72a0) at
eval.c:2546
#37 0x0000000400274f9b in funcall_subr (subr=0x4007a0480
<Srun_hook_wrapped>, numargs=2, args=0xbf72a0) at eval.c:2847
#38 0x0000000400274ca2 in Ffuncall (nargs=3, args=0xbf7298) at eval.c:2794
#39 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x428929c),
vector=XIL(0x428913d), maxdepth=make_fixnum(19),
args_template=make_fixnum(514), nargs=2, args=0xbf7810) at bytecode.c:633
#40 0x00000004002756b5 in funcall_lambda (fun=XIL(0x428910d), nargs=2,
arg_vector=0xbf7800) at eval.c:2989
#41 0x0000000400274ce6 in Ffuncall (nargs=3, args=0xbf77f8) at eval.c:2796
#42 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x4289384),
vector=XIL(0x4288e4d), maxdepth=make_fixnum(27),
args_template=make_fixnum(512), nargs=2, args=0xbf7e48) at bytecode.c:633
#43 0x00000004002756b5 in funcall_lambda (fun=XIL(0x4288e1d), nargs=2,
arg_vector=0xbf7e38) at eval.c:2989
#44 0x0000000400274ce6 in Ffuncall (nargs=3, args=0xbf7e30) at eval.c:2796
#45 0x00000004002e2faa in exec_byte_code (bytestr=XIL(0x429230c),
vector=XIL(0x4291f25), maxdepth=make_fixnum(12),
args_template=make_fixnum(257), nargs=1, args=0xbf83d0) at bytecode.c:633
#46 0x00000004002756b5 in funcall_lambda (fun=XIL(0x4291ef5), nargs=1,
arg_vector=0xbf83c8) at eval.c:2989
#47 0x0000000400274ce6 in Ffuncall (nargs=2, args=0xbf83c0) at eval.c:2796
#48 0x00000004002716e7 in internal_condition_case_n (bfun=0x400274b02
<Ffuncall>, nargs=2, args=0xbf83c0, handlers=XIL(0x30), hfun=0x40003ae7e
<safe_eval_handler>) at eval.c:1435
#49 0x000000040003b093 in safe__call (inhibit_quit=false, nargs=2,
func=XIL(0xfffffffc0398b140), ap=0xbf8488 "\001") at xdisp.c:2740
#50 0x000000040003b0f9 in safe_call (nargs=2, func=XIL(0xfffffffc0398b140))
at xdisp.c:2755
#51 0x000000040003b12c in safe_call1 (fn=XIL(0xfffffffc0398b140),
arg=make_fixnum(1426)) at xdisp.c:2766
#52 0x000000040003e0a7 in handle_fontified_prop (it=0xbf9cc0) at
xdisp.c:4062
#53 0x000000040003ce05 in handle_stop (it=0xbf9cc0) at xdisp.c:3590
#54 0x000000040004a47c in next_element_from_buffer (it=0xbf9cc0) at
xdisp.c:8635
#55 0x0000000400046af0 in get_next_display_element (it=0xbf9cc0) at
xdisp.c:7229
#56 0x0000000400072313 in display_line (it=0xbf9cc0, cursor_vpos=40) at
xdisp.c:21903
#57 0x0000000400066a2c in try_window (window=XIL(0x4a32ba5), pos=...,
flags=1) at xdisp.c:17953
#58 0x00000004000643ee in redisplay_window (window=XIL(0x4a32ba5),
just_this_one_p=true) at xdisp.c:17401
#59 0x000000040005d189 in redisplay_window_1 (window=XIL(0x4a32ba5)) at
xdisp.c:15136
#60 0x000000040027155d in internal_condition_case_1 (bfun=0x40005d14a
<redisplay_window_1>, arg=XIL(0x4a32ba5), handlers=XIL(0x4365af3),
hfun=0x40005d0bf <redisplay_window_error>) at eval.c:1379
#61 0x000000040005c43b in redisplay_internal () at xdisp.c:14706
#62 0x000000040005a0fb in redisplay () at xdisp.c:13818
#63 0x00000004001590c8 in read_char (commandflag=1, map=XIL(0xe27813),
prev_event=XIL(0), used_mouse_menu=0xbff22f, end_time=0x0) at
keyboard.c:2472
#64 0x0000000400166a9c in read_key_sequence (keybuf=0xbff460,
prompt=XIL(0), dont_downcase_last=false, can_return_switch_frame=true,
fix_current_buffer=true, prevent_redisplay=false) at keyboard.c:9125
#65 0x00000004001565fb in command_loop_1 () at keyboard.c:1345
#66 0x00000004002714a3 in internal_condition_case (bfun=0x400156121
<command_loop_1>, handlers=XIL(0x90), hfun=0x4001556f9 <cmd_error>) at
eval.c:1355
#67 0x0000000400155d7f in command_loop_2 (ignore=XIL(0)) at keyboard.c:1091
#68 0x0000000400270d47 in internal_catch (tag=XIL(0xdda0), func=0x400155d4d
<command_loop_2>, arg=XIL(0)) at eval.c:1116
#69 0x0000000400155cd3 in command_loop () at keyboard.c:1070
#70 0x0000000000000000 in ?? ()
Backtrace stopped: previous frame inner to this frame (corrupt stack?)

Lisp Backtrace:
"re-search-forward" (0xbf5500)
0x8ec7fc0 PVEC_COMPILED
"font-lock-fontify-keywords-region" (0xbf6100)
"font-lock-default-fontify-region" (0xbf6688)
"font-lock-fontify-region" (0xbf6b58)
0x902b920 PVEC_COMPILED
"run-hook-wrapped" (0xbf72a0)
"jit-lock--run-functions" (0xbf7800)
"jit-lock-fontify-now" (0xbf7e38)
"jit-lock-function" (0xbf83c8)
"redisplay_internal (C function)" (0x0)



In GNU Emacs 27.0.50 (build 12, x86_64-w64-mingw32)
 of 2019-10-01 built on MACHINE
Repository revision: 72dec8539ea7a0d2fd28bf02abb2d55b329b813f
Repository branch: buster
Windowing system distributor 'Microsoft Corp.', version 10.0.18890
System Description: Microsoft Windows 10 Pro (v10.0.1903.18890.1000)

Recent messages:
For information about GNU Emacs and the GNU system, type C-h C-a.

Configured using:
 'configure --config-cache --with-modules --without-pop --without-dbus
 --without-gconf --without-gsettings 'CFLAGS=-O0 -ggdb3''

Configured features:
XPM JPEG TIFF GIF PNG RSVG SOUND NOTIFY W32NOTIFY ACL GNUTLS LIBXML2
HARFBUZZ ZLIB TOOLKIT_SCROLL_BARS MODULES THREADS JSON PDUMPER LCMS2 GMP

Important settings:
  value of $LANG: ENG
  locale-coding-system: cp1252

Major mode: Lisp Interaction

Minor modes in effect:
  tooltip-mode: t
  global-eldoc-mode: t
  eldoc-mode: t
  electric-indent-mode: t
  mouse-wheel-mode: t
  tool-bar-mode: t
  menu-bar-mode: t
  file-name-shadow-mode: t
  global-font-lock-mode: t
  font-lock-mode: t
  blink-cursor-mode: t
  auto-composition-mode: t
  auto-encryption-mode: t
  auto-compression-mode: t
  line-number-mode: t
  transient-mark-mode: t

Load-path shadows:
None found.

Features:
(shadow sort mail-extr emacsbug message rmc puny dired dired-loaddefs
format-spec rfc822 mml easymenu mml-sec password-cache epa derived epg
epg-config gnus-util rmail rmail-loaddefs text-property-search time-date
subr-x seq byte-opt gv bytecomp byte-compile compile comint ansi-color
ring cconv mm-decode mm-bodies mm-encode mail-parse rfc2231 mailabbrev
gmm-utils mailheader cl-loaddefs cl-lib sendmail rfc2047 rfc2045
ietf-drums mm-util mail-prsvr mail-utils tooltip eldoc electric uniquify
ediff-hook vc-hooks lisp-float-type mwheel dos-w32 ls-lisp disp-table
term/w32-win w32-win w32-vars term/common-win tool-bar dnd fontset image
regexp-opt fringe tabulated-list replace newcomment text-mode elisp-mode
lisp-mode prog-mode register page menu-bar rfn-eshadow isearch timer
select scroll-bar mouse jit-lock font-lock syntax facemenu font-core
term/tty-colors frame cl-generic cham georgian utf-8-lang misc-lang
vietnamese tibetan thai tai-viet lao korean japanese eucjp-ms cp51932
hebrew greek romanian slovak czech european ethiopic indian cyrillic
chinese composite charscript charprop case-table epa-hook jka-cmpr-hook
help simple abbrev obarray minibuffer cl-preloaded nadvice loaddefs
button faces cus-face macroexp files text-properties overlay sha1 md5
base64 format env code-pages mule custom widget hashtable-print-readable
backquote threads w32notify w32 lcms2 multi-tty make-network-process
emacs)

Memory information:
((conses 16 51879 6844)
 (symbols 48 6571 1)
 (strings 32 18260 1549)
 (string-bytes 1 571256)
 (vectors 16 10618)
 (vector-slots 8 133305 9570)
 (floats 8 23 199)
 (intervals 56 220 7)
 (buffers 992 11))

--000000000000dad5b00593de34c7
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">I typed C-w. Emacs crashed.<br><div>This was=20
in &quot;emacs -Q&quot; (master), in a message-mode buffer.<br></div><div><=
br></div>Backtraces:<br><br>(gdb) bt<br>#0 =C2=A00x00007ff9ab4cc803 in KERN=
ELBASE!DebugBreak () from C:\WINDOWS\System32\KernelBase.dll<br>#1 =C2=A00x=
00000004003862d9 in emacs_abort () at w32fns.c:10802<br>#2 =C2=A00x00000004=
0014afee in terminate_due_to_signal (sig=3D11, backtrace_limit=3D40) at ema=
cs.c:401<br>#3 =C2=A00x0000000400182aed in handle_fatal_signal (sig=3D11) a=
t sysdep.c:1790<br>#4 =C2=A00x0000000400182ac0 in deliver_thread_signal (si=
g=3D11, handler=3D0x400182ad5 &lt;handle_fatal_signal&gt;) at sysdep.c:1764=
<br>#5 =C2=A00x0000000400182b29 in deliver_fatal_thread_signal (sig=3D11) a=
t sysdep.c:1802<br>#6 =C2=A00x000000040043e766 in _gnu_exception_handler (e=
xception_data=3D0xbf2d40)<br>=C2=A0 =C2=A0 at E:/mingwbuild/mingw-w64-crt-g=
it/src/mingw-w64/mingw-w64-crt/crt/crt_handler.c:223<br>#7 =C2=A00x00007ff9=
abb58048 in msvcrt!__C_specific_handler () from C:\WINDOWS\System32\msvcrt.=
dll<br>#8 =C2=A00x00007ff9adb735df in ntdll!.chkstk () from C:\WINDOWS\SYST=
EM32\ntdll.dll<br>#9 =C2=A00x00007ff9adb220a9 in ntdll!RtlRaiseException ()=
 from C:\WINDOWS\SYSTEM32\ntdll.dll<br>#10 0x00007ff9adb7224e in ntdll!KiUs=
erExceptionDispatcher () from C:\WINDOWS\SYSTEM32\ntdll.dll<br>#11 0x000000=
0400217205 in re_match_2_internal (bufp=3D0x4008fdef0 &lt;searchbufs+752&gt=
;, string1=3D0x1600000 &quot;MZ\220&quot;,<br>=C2=A0 =C2=A0 size1=3D179, st=
ring2=3D0x1601569 &quot;&quot;, size2=3D3470, pos=3D1589, regs=3D0x40079077=
8 &lt;main_thread+152&gt;, stop=3D1931)<br>=C2=A0 =C2=A0 at regex-emacs.c:4=
940<br>#12 0x000000040021108a in rpl_re_search_2 (bufp=3D0x4008fdef0 &lt;se=
archbufs+752&gt;, str1=3D0x1600000 &quot;MZ\220&quot;, size1=3D179,<br>=C2=
=A0 =C2=A0 str2=3D0x1601569 &quot;&quot;, size2=3D3470, startpos=3D1589, ra=
nge=3D342, regs=3D0x400790778 &lt;main_thread+152&gt;, stop=3D1931)<br>=C2=
=A0 =C2=A0 at regex-emacs.c:3373<br>#13 0x00000004001fb4b4 in search_buffer=
_re (string=3DXIL(0xe420e4), pos=3D1426, pos_byte=3D1426, lim=3D1932, lim_b=
yte=3D1932,<br>=C2=A0 =C2=A0 n=3D1, trt=3DXIL(0), inverse_trt=3DXIL(0), pos=
ix=3Dfalse) at search.c:1244<br>#14 0x00000004001fc373 in search_buffer (st=
ring=3DXIL(0xe420e4), pos=3D1426, pos_byte=3D1426, lim=3D1932, lim_byte=3D1=
932, n=3D1,<br>=C2=A0 =C2=A0 RE=3D1, trt=3DXIL(0), inverse_trt=3DXIL(0), po=
six=3Dfalse) at search.c:1506<br>#15 0x00000004001facb7 in search_command (=
string=3DXIL(0xe420e4), bound=3Dmake_fixnum(1932), noerror=3DXIL(0x30),<br>=
=C2=A0 =C2=A0 count=3DXIL(0), direction=3D1, RE=3D1, posix=3Dfalse) at sear=
ch.c:1048<br>#16 0x00000004001fe4ac in Fre_search_forward (regexp=3DXIL(0xe=
420e4), bound=3Dmake_fixnum(1932), noerror=3DXIL(0x30),<br>=C2=A0 =C2=A0 co=
unt=3DXIL(0)) at search.c:2277<br>#17 0x0000000400275106 in funcall_subr (s=
ubr=3D0x40079c480 &lt;Sre_search_forward&gt;, numargs=3D3, args=3D0xbf5500)=
<br>=C2=A0 =C2=A0 at eval.c:2875<br>#18 0x0000000400274ca2 in Ffuncall (nar=
gs=3D4, args=3D0xbf54f8) at eval.c:2794<br>#19 0x00000004002e2faa in exec_b=
yte_code (bytestr=3DXIL(0x8f35554), vector=3DXIL(0x8ec9335), maxdepth=3Dmak=
e_fixnum(9), args_template=3Dmake_fixnum(257), nargs=3D1, args=3D0xbf5a70) =
at bytecode.c:633<br>#20 0x00000004002756b5 in funcall_lambda (fun=3DXIL(0x=
8ec7fc5), nargs=3D1, arg_vector=3D0xbf5a68) at eval.c:2989<br>#21 0x0000000=
400274ce6 in Ffuncall (nargs=3D2, args=3D0xbf5a60) at eval.c:2796<br>#22 0x=
00000004002e2faa in exec_byte_code (bytestr=3DXIL(0x4164334), vector=3DXIL(=
0x415dc25), maxdepth=3Dmake_fixnum(25), args_template=3Dmake_fixnum(770), n=
args=3D3, args=3D0xbf6118) at bytecode.c:633<br>#23 0x00000004002756b5 in f=
uncall_lambda (fun=3DXIL(0x415dbf5), nargs=3D3, arg_vector=3D0xbf6100) at e=
val.c:2989<br>#24 0x0000000400274ce6 in Ffuncall (nargs=3D4, args=3D0xbf60f=
8) at eval.c:2796<br>#25 0x00000004002e2faa in exec_byte_code (bytestr=3DXI=
L(0x428e534), vector=3DXIL(0x415d1d5), maxdepth=3Dmake_fixnum(14), args_tem=
plate=3Dmake_fixnum(771), nargs=3D3, args=3D0xbf66a0) at bytecode.c:633<br>=
#26 0x00000004002756b5 in funcall_lambda (fun=3DXIL(0x415d1a5), nargs=3D3, =
arg_vector=3D0xbf6688) at eval.c:2989<br>#27 0x0000000400274ce6 in Ffuncall=
 (nargs=3D4, args=3D0xbf6680) at eval.c:2796<br>#28 0x00000004002e2faa in e=
xec_byte_code (bytestr=3DXIL(0x428e734), vector=3DXIL(0x415d10d), maxdepth=
=3Dmake_fixnum(7), args_template=3Dmake_fixnum(770), nargs=3D2, args=3D0xbf=
6b68) at bytecode.c:633<br>#29 0x00000004002756b5 in funcall_lambda (fun=3D=
XIL(0x415d0dd), nargs=3D2, arg_vector=3D0xbf6b58) at eval.c:2989<br>#30 0x0=
000000400274ce6 in Ffuncall (nargs=3D3, args=3D0xbf6b50) at eval.c:2796<br>=
#31 0x00000004002e2faa in exec_byte_code (bytestr=3DXIL(0x42891b4), vector=
=3DXIL(0x902b8d5), maxdepth=3Dmake_fixnum(10), args_template=3Dmake_fixnum(=
257), nargs=3D1, args=3D0xbf72b0) at bytecode.c:633<br>#32 0x00000004002756=
b5 in funcall_lambda (fun=3DXIL(0x902b925), nargs=3D1, arg_vector=3D0xbf72a=
8) at eval.c:2989<br>#33 0x0000000400274ce6 in Ffuncall (nargs=3D2, args=3D=
0xbf72a0) at eval.c:2796<br>#34 0x000000040027421f in run_hook_wrapped_func=
all (nargs=3D2, args=3D0xbf72a0) at eval.c:2531<br>#35 0x00000004002744a1 i=
n run_hook_with_args (nargs=3D2, args=3D0xbf72a0, funcall=3D0x4002741d6 &lt=
;run_hook_wrapped_funcall&gt;) at eval.c:2612<br>#36 0x0000000400274271 in =
Frun_hook_wrapped (nargs=3D2, args=3D0xbf72a0) at eval.c:2546<br>#37 0x0000=
000400274f9b in funcall_subr (subr=3D0x4007a0480 &lt;Srun_hook_wrapped&gt;,=
 numargs=3D2, args=3D0xbf72a0) at eval.c:2847<br>#38 0x0000000400274ca2 in =
Ffuncall (nargs=3D3, args=3D0xbf7298) at eval.c:2794<br>#39 0x00000004002e2=
faa in exec_byte_code (bytestr=3DXIL(0x428929c), vector=3DXIL(0x428913d), m=
axdepth=3Dmake_fixnum(19), args_template=3Dmake_fixnum(514), nargs=3D2, arg=
s=3D0xbf7810) at bytecode.c:633<br>#40 0x00000004002756b5 in funcall_lambda=
 (fun=3DXIL(0x428910d), nargs=3D2, arg_vector=3D0xbf7800) at eval.c:2989<br=
>#41 0x0000000400274ce6 in Ffuncall (nargs=3D3, args=3D0xbf77f8) at eval.c:=
2796<br>#42 0x00000004002e2faa in exec_byte_code (bytestr=3DXIL(0x4289384),=
 vector=3DXIL(0x4288e4d), maxdepth=3Dmake_fixnum(27), args_template=3Dmake_=
fixnum(512), nargs=3D2, args=3D0xbf7e48) at bytecode.c:633<br>#43 0x0000000=
4002756b5 in funcall_lambda (fun=3DXIL(0x4288e1d), nargs=3D2, arg_vector=3D=
0xbf7e38) at eval.c:2989<br>#44 0x0000000400274ce6 in Ffuncall (nargs=3D3, =
args=3D0xbf7e30) at eval.c:2796<br>#45 0x00000004002e2faa in exec_byte_code=
 (bytestr=3DXIL(0x429230c), vector=3DXIL(0x4291f25), maxdepth=3Dmake_fixnum=
(12), args_template=3Dmake_fixnum(257), nargs=3D1, args=3D0xbf83d0) at byte=
code.c:633<br>#46 0x00000004002756b5 in funcall_lambda (fun=3DXIL(0x4291ef5=
), nargs=3D1, arg_vector=3D0xbf83c8) at eval.c:2989<br>#47 0x0000000400274c=
e6 in Ffuncall (nargs=3D2, args=3D0xbf83c0) at eval.c:2796<br>#48 0x0000000=
4002716e7 in internal_condition_case_n (bfun=3D0x400274b02 &lt;Ffuncall&gt;=
, nargs=3D2, args=3D0xbf83c0, handlers=3DXIL(0x30), hfun=3D0x40003ae7e &lt;=
safe_eval_handler&gt;) at eval.c:1435<br>#49 0x000000040003b093 in safe__ca=
ll (inhibit_quit=3Dfalse, nargs=3D2, func=3DXIL(0xfffffffc0398b140), ap=3D0=
xbf8488 &quot;\001&quot;) at xdisp.c:2740<br>#50 0x000000040003b0f9 in safe=
_call (nargs=3D2, func=3DXIL(0xfffffffc0398b140)) at xdisp.c:2755<br>#51 0x=
000000040003b12c in safe_call1 (fn=3DXIL(0xfffffffc0398b140), arg=3Dmake_fi=
xnum(1426)) at xdisp.c:2766<br>#52 0x000000040003e0a7 in handle_fontified_p=
rop (it=3D0xbf9cc0) at xdisp.c:4062<br>#53 0x000000040003ce05 in handle_sto=
p (it=3D0xbf9cc0) at xdisp.c:3590<br>#54 0x000000040004a47c in next_element=
_from_buffer (it=3D0xbf9cc0) at xdisp.c:8635<br>#55 0x0000000400046af0 in g=
et_next_display_element (it=3D0xbf9cc0) at xdisp.c:7229<br>#56 0x0000000400=
072313 in display_line (it=3D0xbf9cc0, cursor_vpos=3D40) at xdisp.c:21903<b=
r>#57 0x0000000400066a2c in try_window (window=3DXIL(0x4a32ba5), pos=3D...,=
 flags=3D1) at xdisp.c:17953<br>#58 0x00000004000643ee in redisplay_window =
(window=3DXIL(0x4a32ba5), just_this_one_p=3Dtrue) at xdisp.c:17401<br>#59 0=
x000000040005d189 in redisplay_window_1 (window=3DXIL(0x4a32ba5)) at xdisp.=
c:15136<br>#60 0x000000040027155d in internal_condition_case_1 (bfun=3D0x40=
005d14a &lt;redisplay_window_1&gt;, arg=3DXIL(0x4a32ba5), handlers=3DXIL(0x=
4365af3), hfun=3D0x40005d0bf &lt;redisplay_window_error&gt;) at eval.c:1379=
<br>#61 0x000000040005c43b in redisplay_internal () at xdisp.c:14706<br>#62=
 0x000000040005a0fb in redisplay () at xdisp.c:13818<br>#63 0x0000000400159=
0c8 in read_char (commandflag=3D1, map=3DXIL(0xe27813), prev_event=3DXIL(0)=
, used_mouse_menu=3D0xbff22f, end_time=3D0x0) at keyboard.c:2472<br>#64 0x0=
000000400166a9c in read_key_sequence (keybuf=3D0xbff460, prompt=3DXIL(0), d=
ont_downcase_last=3Dfalse, can_return_switch_frame=3Dtrue, fix_current_buff=
er=3Dtrue, prevent_redisplay=3Dfalse) at keyboard.c:9125<br>#65 0x000000040=
01565fb in command_loop_1 () at keyboard.c:1345<br>#66 0x00000004002714a3 i=
n internal_condition_case (bfun=3D0x400156121 &lt;command_loop_1&gt;, handl=
ers=3DXIL(0x90), hfun=3D0x4001556f9 &lt;cmd_error&gt;) at eval.c:1355<br>#6=
7 0x0000000400155d7f in command_loop_2 (ignore=3DXIL(0)) at keyboard.c:1091=
<br>#68 0x0000000400270d47 in internal_catch (tag=3DXIL(0xdda0), func=3D0x4=
00155d4d &lt;command_loop_2&gt;, arg=3DXIL(0)) at eval.c:1116<br>#69 0x0000=
000400155cd3 in command_loop () at keyboard.c:1070<br>#70 0x000000000000000=
0 in ?? ()<br>Backtrace stopped: previous frame inner to this frame (corrup=
t stack?)<br><br>Lisp Backtrace:<br>&quot;re-search-forward&quot; (0xbf5500=
)<br>0x8ec7fc0 PVEC_COMPILED<br>&quot;font-lock-fontify-keywords-region&quo=
t; (0xbf6100)<br>&quot;font-lock-default-fontify-region&quot; (0xbf6688)<br=
>&quot;font-lock-fontify-region&quot; (0xbf6b58)<br>0x902b920 PVEC_COMPILED=
<br>&quot;run-hook-wrapped&quot; (0xbf72a0)<br>&quot;jit-lock--run-function=
s&quot; (0xbf7800)<br>&quot;jit-lock-fontify-now&quot; (0xbf7e38)<br>&quot;=
jit-lock-function&quot; (0xbf83c8)<br>&quot;redisplay_internal (C function)=
&quot; (0x0)<br><br><br><br>In GNU Emacs 27.0.50 (build 12, x86_64-w64-ming=
w32)<br>=C2=A0of 2019-10-01 built on MACHINE<br>Repository revision: 72dec8=
539ea7a0d2fd28bf02abb2d55b329b813f<br>Repository branch: buster<br>Windowin=
g system distributor &#39;Microsoft Corp.&#39;, version 10.0.18890<br>Syste=
m Description: Microsoft Windows 10 Pro (v10.0.1903.18890.1000)<br><br>Rece=
nt messages:<br>For information about GNU Emacs and the GNU system, type C-=
h C-a.<br><br>Configured using:<br>=C2=A0&#39;configure --config-cache --wi=
th-modules --without-pop --without-dbus<br>=C2=A0--without-gconf --without-=
gsettings &#39;CFLAGS=3D-O0 -ggdb3&#39;&#39;<br><br>Configured features:<br=
>XPM JPEG TIFF GIF PNG RSVG SOUND NOTIFY W32NOTIFY ACL GNUTLS LIBXML2<br>HA=
RFBUZZ ZLIB TOOLKIT_SCROLL_BARS MODULES THREADS JSON PDUMPER LCMS2 GMP<br><=
br>Important settings:<br>=C2=A0 value of $LANG: ENG<br>=C2=A0 locale-codin=
g-system: cp1252<br><br>Major mode: Lisp Interaction<br><br>Minor modes in =
effect:<br>=C2=A0 tooltip-mode: t<br>=C2=A0 global-eldoc-mode: t<br>=C2=A0 =
eldoc-mode: t<br>=C2=A0 electric-indent-mode: t<br>=C2=A0 mouse-wheel-mode:=
 t<br>=C2=A0 tool-bar-mode: t<br>=C2=A0 menu-bar-mode: t<br>=C2=A0 file-nam=
e-shadow-mode: t<br>=C2=A0 global-font-lock-mode: t<br>=C2=A0 font-lock-mod=
e: t<br>=C2=A0 blink-cursor-mode: t<br>=C2=A0 auto-composition-mode: t<br>=
=C2=A0 auto-encryption-mode: t<br>=C2=A0 auto-compression-mode: t<br>=C2=A0=
 line-number-mode: t<br>=C2=A0 transient-mark-mode: t<br><br>Load-path shad=
ows:<br>None found.<br><br>Features:<br>(shadow sort mail-extr emacsbug mes=
sage rmc puny dired dired-loaddefs<br>format-spec rfc822 mml easymenu mml-s=
ec password-cache epa derived epg<br>epg-config gnus-util rmail rmail-loadd=
efs text-property-search time-date<br>subr-x seq byte-opt gv bytecomp byte-=
compile compile comint ansi-color<br>ring cconv mm-decode mm-bodies mm-enco=
de mail-parse rfc2231 mailabbrev<br>gmm-utils mailheader cl-loaddefs cl-lib=
 sendmail rfc2047 rfc2045<br>ietf-drums mm-util mail-prsvr mail-utils toolt=
ip eldoc electric uniquify<br>ediff-hook vc-hooks lisp-float-type mwheel do=
s-w32 ls-lisp disp-table<br>term/w32-win w32-win w32-vars term/common-win t=
ool-bar dnd fontset image<br>regexp-opt fringe tabulated-list replace newco=
mment text-mode elisp-mode<br>lisp-mode prog-mode register page menu-bar rf=
n-eshadow isearch timer<br>select scroll-bar mouse jit-lock font-lock synta=
x facemenu font-core<br>term/tty-colors frame cl-generic cham georgian utf-=
8-lang misc-lang<br>vietnamese tibetan thai tai-viet lao korean japanese eu=
cjp-ms cp51932<br>hebrew greek romanian slovak czech european ethiopic indi=
an cyrillic<br>chinese composite charscript charprop case-table epa-hook jk=
a-cmpr-hook<br>help simple abbrev obarray minibuffer cl-preloaded nadvice l=
oaddefs<br>button faces cus-face macroexp files text-properties overlay sha=
1 md5<br>base64 format env code-pages mule custom widget hashtable-print-re=
adable<br>backquote threads w32notify w32 lcms2 multi-tty make-network-proc=
ess<br>emacs)<br><br>Memory information:<br>((conses 16 51879 6844)<br>=C2=
=A0(symbols 48 6571 1)<br>=C2=A0(strings 32 18260 1549)<br>=C2=A0(string-by=
tes 1 571256)<br>=C2=A0(vectors 16 10618)<br>=C2=A0(vector-slots 8 133305 9=
570)<br>=C2=A0(floats 8 23 199)<br>=C2=A0(intervals 56 220 7)<br>=C2=A0(buf=
fers 992 11))<br></div>

--000000000000dad5b00593de34c7--




Acknowledgement sent to Richard Copley <rcopley@HIDDEN>:
New bug report received and forwarded. Copy sent to bug-gnu-emacs@HIDDEN. Full text available.
Report forwarded to bug-gnu-emacs@HIDDEN:
bug#37575; Package emacs. Full text available.
Please note: This is a static page, with minimal formatting, updated once a day.
Click here to see this page with the latest information and nicer formatting.
Last modified: Mon, 25 Nov 2019 12:00:02 UTC

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997 nCipher Corporation Ltd, 1994-97 Ian Jackson.